CVE-2019-14697
First published: Tue Aug 06 2019(Updated: )
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Musl-libc Musl | >=0.9.12<=1.1.23 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-14697?
CVE-2019-14697 is a vulnerability in musl libc through version 1.1.23 that can lead to out-of-bounds writes.
How severe is CVE-2019-14697?
CVE-2019-14697 has a severity rating of 9.8 (Critical).
How does CVE-2019-14697 affect musl libc?
CVE-2019-14697 affects musl libc versions up to 1.1.23 and introduces an x87 floating-point stack adjustment imbalance in the math/i386/ directory.
What is the vulnerability type of CVE-2019-14697?
CVE-2019-14697 is classified as CWE-787 (Out-of-bounds Write).
Are there any references for CVE-2019-14697?
Yes, you can find references for CVE-2019-14697 at the following links: http://www.openwall.com/lists/oss-security/2019/08/06/4, https://security.gentoo.org/glsa/202003-13, https://www.openwall.com/lists/musl/2019/08/06/1
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/remedy
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/musl-libc
- canonical/musl-libc musl
- version/musl-libc musl/0.9.12
- version/musl-libc musl/1.1.23